Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Tracking & Law Enforcement

Lawsuit Lays Bare Israel-made Hack Tools in Mideast, Mexico

PARIS (AP) — One day late last year, Qatari newspaper editor Abdullah Al-Athbah came home, removed the SIM card from his iPhone 7 and smashed it to pieces with a hammer.

PARIS (AP) — One day late last year, Qatari newspaper editor Abdullah Al-Athbah came home, removed the SIM card from his iPhone 7 and smashed it to pieces with a hammer.

A source had just handed Al-Athbah a cache of emails suggesting that his phone had been targeted by hacking software made by Israel’s NSO Group. He told The Associated Press he considered the phone compromised.

“I feared that someone could get back into it,” he said in an interview Friday. “I needed to protect my sources.”

Al-Athbah, who edits Qatar’s Al-Arab newspaper, now has a new phone, a new SIM card and a new approach to email attachments and links. He says he never opens anything, “even from the most trusted circles in my life.”

Al-Athbah’s discovery touched off a process that has led, months later, to parallel lawsuits filed in Israel and Cyprus — and provided a behind-the-scenes look at how government-grade spyware is used to eavesdrop on everyone from Mexican reporters to Arab royalty.

The NSO Group did not immediately return messages seeking comment.

The first lawsuit , filed in a Tel Aviv court on Thursday, carries a claim from five Mexican journalists and activists who allege they were spied on using NSO Group software. The second, filed in Cyprus, adds Al-Athbah to the list of plaintiffs.

Both draw heavily on the leaked material handed to the editor several months ago. Portions of the material — which appears to have been carefully picked and exhaustively annotated by an unknown party — appear to show officials in the United Arab Emirates discussing whether to hack into the phones of senior figures in Saudi Arabia and Qatar, including members of the Qatari royal family.

Advertisement. Scroll to continue reading.

Al-Athba declined to identify his source and the AP was not immediately able to verify the authenticity of the material, some of which has already been entered into evidence in the Israeli case, according to Mazen Masri, a member of Al-Athbah’s legal team. But The New York Times, which first reported on the lawsuits earlier Friday, indicated that it had verified some of the cache, including a reference to an intercepted telephone conversation involving senior Arab journalist Abdulaziz Alkhamis. The Times said Alkhamis confirmed having had the conversation and said he was unaware that he was under surveillance.

The parallel lawsuits underline the growing notoriety of the NSO Group, which is owned by U.S. private equity firm Francisco Partners.

One of the Mexican plaintiffs, childhood anti-obesity campaigner Alejandro Calvillo, drew global attention last year when he was revealed to have been targeted using the Israeli company’s spyware. The NSO Group’s programs have since been implicated in a massive espionage scandal in Panama. A month ago, respected human rights organization Amnesty International accused the company of having crafted the digital tools used to target one of its staffers.

The five Mexican plaintiffs, who were advised by Mexico City-based digital activism group widely known by its acronym R3D, are seeking 2.5 million Israeli shekels ($693,000) in compensation and an injunction to prevent the NSO Group from helping anyone spy on them.

Al-Athbah said he wanted the case to go even further and spawn restrictions on the trade in hacking tools.

“I hope selling such technology should be stopped very soon,” he said.

Related: Ex-NSO Employee Accused of Stealing Spyware Source Code

RelatedHuman Rights Group: Employee Targeted With Israeli Spyware

Written By

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Cybercrime

Daniel Kelley was just 18 years old when he was arrested and charged on thirty counts – most infamously for the 2015 hack of...

Cybercrime

No one combatting cybercrime knows everything, but everyone in the battle has some intelligence to contribute to the larger knowledge base.

Cybercrime

The FBI dismantled the network of the prolific Hive ransomware gang and seized infrastructure in Los Angeles that was used for the operation.

Ransomware

The Hive ransomware website has been seized as part of an operation that involved law enforcement in 10 countries.

Privacy

Employees of Chinese tech giant ByteDance improperly accessed data from social media platform TikTok to track journalists in a bid to identify the source...

CISO Strategy

The SEC filed charges against SolarWinds and its CISO over misleading investors about its cybersecurity practices and known risks.

Cybercrime

A global cyber espionage campaign has resulted in the networks of many organizations around the world becoming compromised after the attackers managed to breach...

Ransomware

US government reminds the public that a reward of up to $10 million is offered for information on cybercriminals, including members of the Hive...